Complete The Initial Configuration - Cisco Firepower 2100 Getting Started Manual

Hide thumbs Also See for Firepower 2100:

Getting started manual (104 pages)

Getting started manual (150 pages)

Getting started manual (178 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

page of 222

/ 222
Contents
Table of Contents
Bookmarks

Table of Contents

Firepower Threat Defense Deployment with CDO

Complete the Initial Configuration

Use the setup wizard when you first log into FDM to complete the initial configuration. After you complete

the setup wizard, you should have a functioning device with a few basic policies in place:

• An outside (Ethernet1/1) and an inside interface (Ethernet1/2).

• Security zones for the inside and outside interfaces.

• An access rule trusting all inside to outside traffic.

• An interface NAT rule that translates all inside to outside traffic to unique ports on the IP address of the

• A DHCP server running on the inside interface.

Note

If you performed the

then some of these tasks, specifically changing the admin password and configuring the outside and management

interfaces, should have already been completed.

Procedure

Step 1

You are prompted to read and accept the End User License Agreement and change the admin password.

You must complete these steps to continue.

Step 2

Configure the following options for the outside and management interfaces and click Next.

Note

a) Outside Interface—This is the data port that you connected to your gateway router. You cannot select

an alternative outside interface during initial device setup. The first data interface is the default outside

interface.

Configure IPv4—The IPv4 address for the outside interface. You can use DHCP or manually enter a

static IP address, subnet mask, and gateway. You can also select Off to not configure an IPv4 address.

You cannot configure PPPoE using the setup wizard. PPPoE may be required if the interface is connected

to a DSL modem, cable modem, or other connection to your ISP, and your ISP uses PPPoE to provide

your IP address. You can configure PPPoE after you complete the wizard.

Configure IPv6—The IPv6 address for the outside interface. You can use DHCP or manually enter a

static IP address, prefix, and gateway. You can also select Off to not configure an IPv6 address.

b) Management Interface

DNS Servers—The DNS server for the system's management address. Enter one or more addresses of

DNS servers for name resolution. The default is the OpenDNS public DNS servers. If you edit the fields

and want to return to the default, click Use OpenDNS to reload the appropriate IP addresses into the

fields.

Firewall Hostname—The hostname for the system's management address.

outside interface.

(Optional) Change Management Network Settings at the CLI, on page 12

Your settings are deployed to the device when you click Next. The interface will be named "outside"

and it will be added to the "outside_zone" security zone. Ensure that your settings are correct.

Complete the Initial Configuration

Cisco Firepower 2100 Getting Started Guide

procedure,

139

Table of Contents

Chapters

Table of Contents

Complete The Initial Configuration - Cisco Firepower 2100 Getting Started Manual

Complete the Initial Configuration

Chapters

Related Manuals for Cisco Firepower 2100

Related Content for Cisco Firepower 2100

Table of Contents